206.72.206.122

Basic Information

Network
IS-AS-1 (US)
Routing
206.72.192.0/20 via AS6939 , AS19318 AS19318 AS19318
Protocols
993/IMAPS, 465/SMTP, 995/POP3S, 25/SMTP, 110/POP3, 21/FTP, 143/IMAP, 53/DNS, 587/SMTP, 22/SSH, 2083/BANNER, 2222/BANNER
Tags
pop3 ftp ssh dns pop3s smtp imap imaps

21/FTP


Details

Banner Grab

Server
Pure-FTPd
Banner:
220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
220-You are user number 1 of 50 allowed.
220-Local time is now 12:35. Server port: 21.
220-This is a private system - No anonymous login
220-IPv6 connections are also welcome on this server.
220 You will be disconnected after 15 minutes of inactivity.

22/SSH


Details

SSHv2 Handshake

Server
OpenSSH 7.4
Banner
SSH-2.0-OpenSSH_7.4

Host Key

Algorithm
ecdsa-sha2-nistp256
Fingerprint
1f0c6c6c3120edb2eecb8e0b4dc036834e752eb1d86c637a9d9c7c43f6bd75fe

Negotiated Algorithm

Key Exchange
[email protected]
Symmetric Cipher
aes128-ctr [] | aes128-ctr []
MAC
hmac-sha2-256 [] | hmac-sha2-256 []

25/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 cloud.googiehost.com ESMTP Exim 4.93.0.4 Sat, 04 Jul 2020 13:36:02 -0400
EHLO
250-cloud.googiehost.com Hello worker-01.sfj.censys-scanner.com [192.35.168.16]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

465/SMTP


Details

Banner Grab

Banner
220 cloud.googiehost.com ESMTP Exim 4.93.0.4 Tue, 07 Jul 2020 00:17:41 -0400

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3

587/SMTP


Details

Banner Grab and StartTLS Initiation

Server
Exim
Banner
220 cloud.googiehost.com ESMTP Exim 4.93.0.4 Sat, 04 Jul 2020 01:03:53 -0400
EHLO
250-cloud.googiehost.com Hello worker-09.sfj.censys-scanner.com [192.35.168.144]
250-SIZE 52428800
250-8BITMIME
250-PIPELINING
250-AUTH PLAIN LOGIN
250-STARTTLS
250 HELP
STARTTLS
220 TLS go ahead

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

53/DNS


Details

Open Resolver Query

Open Resolver
False

110/POP3


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
+OK Dovecot DA ready.
STARTTLS
+OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

143/IMAP


Details

Banner Grab and StartTLS Initiation

Server
Dovecot
Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN] Dovecot DA ready.
STARTTLS
a001 OK Begin TLS negotiation now.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

993/IMAPS


Details

Banner Grab

Banner
* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ AUTH=PLAIN] Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

995/POP3S


Details

Banner Grab

Banner
+OK Dovecot DA ready.

TLS Handshake

Version
TLSv1.2
Cipher Suite
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (0xC02F)
Browser Trusted
True

Certificate Chain

3d1753ccedc0eac4c98c06a2e11712fb030787cc25a4efc6c4cedd977cc65604
CN=cloud.googiehost.com
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
25847d668eb4f04fdd40b12b6b0740c567da7d024308eb6c2c96fe41d9de218d
C=US, O=Let's Encrypt, CN=Let's Encrypt Authority X3
O=Digital Signature Trust Co., CN=DST Root CA X3

2083/BANNER View Only


Details

Banner Info

Port
2083
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Found
Server: DirectAdmin Daemon v1.61.0
Location: https://206.72.206.122:2222
x-use-https: yes
Content-type: text/html

use https

2222/BANNER View Only


Details

Banner Info

Port
2222
Protocol
TCP
Decoded Banner
HTTP/1.1 302 Found
Server: DirectAdmin Daemon v1.61.0
Location: https://206.72.206.122:2222
x-use-https: yes
Content-type: text/html

use https

Geographic Location

City
Brooklyn
State
New York
Country
United States (US)
Lat/Long
40.6375, -74.0216
Timezone
America/New York